Combining Physical and Network Data for Attack Detection in Water Distribution Networks
Water distribution infrastructures are increasingly incorporating the IoT in the form of sensing and computing power to improve control over the system and achieve greater adaptability to water demand. This evolution, from physical to cyber-physical systems, comes with an attack perimeter extended f...
Saved in:
| Main Authors: | , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
MDPI AG
2024-09-01
|
| Series: | Engineering Proceedings |
| Subjects: | |
| Online Access: | https://www.mdpi.com/2673-4591/69/1/118 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1850090025433169920 |
|---|---|
| author | Côme Frappé - - Vialatoux Pierre Parrend |
| author_facet | Côme Frappé - - Vialatoux Pierre Parrend |
| author_sort | Côme Frappé - - Vialatoux |
| collection | DOAJ |
| description | Water distribution infrastructures are increasingly incorporating the IoT in the form of sensing and computing power to improve control over the system and achieve greater adaptability to water demand. This evolution, from physical to cyber-physical systems, comes with an attack perimeter extended from physical infrastructure to cyberspace. Being able to detect this novel kind of attack is gaining traction in the scientific community. Machine learning detection algorithms, which are showing encouraging results in cybersecurity applications, are leveraging the increasing number of datasets published in the water distribution community for better attack detection. These datasets also begin to reflect this novel cyber-physical aspect in two ways, first by conducting cyberattacks against the testbed infrastructures during data acquisition, and secondly by including network traffic data along with the physical data captured during the experimentations. However, current machine learning models do not fully take into account this cyber-physical component, being only trained either on the physical or on the network data. This paper addresses this problem by providing a multi-layer approach to applying machine learning to cyber-physical systems, by combining physical and network traffic data and assessing their effects on the attack detection performance of machine learning algorithms, as well as the cross-impact with data enriched with graph metrics. |
| format | Article |
| id | doaj-art-9978f07b04fa438fb24a5d5f65bccefd |
| institution | DOAJ |
| issn | 2673-4591 |
| language | English |
| publishDate | 2024-09-01 |
| publisher | MDPI AG |
| record_format | Article |
| series | Engineering Proceedings |
| spelling | doaj-art-9978f07b04fa438fb24a5d5f65bccefd2025-08-20T02:42:38ZengMDPI AGEngineering Proceedings2673-45912024-09-0169111810.3390/engproc2024069118Combining Physical and Network Data for Attack Detection in Water Distribution NetworksCôme Frappé - - Vialatoux0Pierre Parrend1ICube—Laboratoire des Sciences de L’ingénieur, de L’informatique et de L’imagerie UMR 7357, Université de Strasbourg, 67000 Strasbourg, FranceICube—Laboratoire des Sciences de L’ingénieur, de L’informatique et de L’imagerie UMR 7357, Université de Strasbourg, 67000 Strasbourg, FranceWater distribution infrastructures are increasingly incorporating the IoT in the form of sensing and computing power to improve control over the system and achieve greater adaptability to water demand. This evolution, from physical to cyber-physical systems, comes with an attack perimeter extended from physical infrastructure to cyberspace. Being able to detect this novel kind of attack is gaining traction in the scientific community. Machine learning detection algorithms, which are showing encouraging results in cybersecurity applications, are leveraging the increasing number of datasets published in the water distribution community for better attack detection. These datasets also begin to reflect this novel cyber-physical aspect in two ways, first by conducting cyberattacks against the testbed infrastructures during data acquisition, and secondly by including network traffic data along with the physical data captured during the experimentations. However, current machine learning models do not fully take into account this cyber-physical component, being only trained either on the physical or on the network data. This paper addresses this problem by providing a multi-layer approach to applying machine learning to cyber-physical systems, by combining physical and network traffic data and assessing their effects on the attack detection performance of machine learning algorithms, as well as the cross-impact with data enriched with graph metrics.https://www.mdpi.com/2673-4591/69/1/118cyber-physical systemssecuritymachine learning |
| spellingShingle | Côme Frappé - - Vialatoux Pierre Parrend Combining Physical and Network Data for Attack Detection in Water Distribution Networks Engineering Proceedings cyber-physical systems security machine learning |
| title | Combining Physical and Network Data for Attack Detection in Water Distribution Networks |
| title_full | Combining Physical and Network Data for Attack Detection in Water Distribution Networks |
| title_fullStr | Combining Physical and Network Data for Attack Detection in Water Distribution Networks |
| title_full_unstemmed | Combining Physical and Network Data for Attack Detection in Water Distribution Networks |
| title_short | Combining Physical and Network Data for Attack Detection in Water Distribution Networks |
| title_sort | combining physical and network data for attack detection in water distribution networks |
| topic | cyber-physical systems security machine learning |
| url | https://www.mdpi.com/2673-4591/69/1/118 |
| work_keys_str_mv | AT comefrappevialatoux combiningphysicalandnetworkdataforattackdetectioninwaterdistributionnetworks AT pierreparrend combiningphysicalandnetworkdataforattackdetectioninwaterdistributionnetworks |